Skip to content

aamalev/hsmq

BranchesTags

Repository files navigation

hsmq

Horizontal Scalable Message Queue Broker

rustc Actions Status Actions Status Actions Status

Features

  • Interface
    • gRPC
    • WebSocket
  • Configurable service
  • Graceful shutdown
  • Prometheus metrics
  • Consul
  • Sentry
  • Vault
  • Declare queue params
  • Console client hsmq-cli
    • Publish
    • Publish QoS0
    • Subscribe to a queue
  • Queue
    • Bind on static topics
    • In memory buffer
    • Graceful serve consumers on shutdown
    • Metrics
    • Limit
    • Ack
    • TTL for messages
    • Dynamic queue with ttl
  • Auth
    • Tokens
    • JWT
  • Cluster
    • Static routes
    • DNS routes
    • Broadcast routes
    • Hot replication queue on shutdown

Message life cycle

Message contains:

- data
- headers
- topic

After publication, messages are filtered by topic. If the topic satisfies the condition, the message is saved in the queue.

Queues

InMemory

[[queues]]
type = "InMemory"
name = "b"
limit = 99  # oldest messages will be drop with metric label "drop-limit"
ack_timeout = 1  # in seconds, or use { m = 3 } to specify 3 minutes
topics = [
    "b.a",  # all messages with topic "b.a" will be kept to queue "b"
]

Auth

JWT

Your secrets must be kept to config:

[auth.jwt]
secrets = [
    "inline secret",
    { env = "JWT_SECRET" },  # secret from environment variable
    { name = "old_secret_2", env = "OLD_JWT_2" },  # name for metrics
    { name = "old_secret_1", env = "OLD_JWT_1", disable = true },
]

You must specify a header in each request:

authorization: Bearer {jwt-token}

Required claims with token:

  • exp - deadline unix timestamp
  • sub - username

Tokens

Your tokens must be kept to config for each user:

[users.my_username]
tokens = [
    "inline personal token",
    { env = "TOKEN" },  # token from environment variable
    { env = "TOKEN_1", disable = true },
]

You must specify a header in each request:

authorization: Bearer {token}

Vault

For enable vault add to config block [vault]

[vault]
[vault]  # enable vault
uri = "http://localhost:8200"  # optional
auth.jwt.env = "VAULT_JWT_TOKEN"  # optional
token = { env = "VAULT_TOKEN", file = "/etc/vault-token.json", json_field = "jwt" }  # optional
ca_cert = "/etc/ca.pem"  # optional

[auth.jwt]
secrets = [
    { vault_path = "project/hsmq/jwt_1", json_field = "token", vault_mount = "secret" },  # field from json from kv2
    { vault_path = "project/hsmq/jwt_2", vault_kv_version = 1, json_field = "token" },  # token from kv1
]

About

Horizontal Scalable Message Queue Broker

Topics

rust mq

Resources

Readme

License

Apache-2.0 license
Activity

Stars

4 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases 1

0.1.0 Latest
Jul 4, 2024

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages